3ac7ff93ab9dc270dcee93814de581ee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ac7ff93ab9dc270dcee93814de581ee_JaffaCakes118
Size

201KB
MD5

3ac7ff93ab9dc270dcee93814de581ee
SHA1

81446205dc67882caff0402dc86c2ed6c7d70b8d
SHA256

ee3922518a71a5d2356cf95012b84aa290f24d099e89405ef1006c3f6df26b68
SHA512

bef01cd346a93d5d67b0f6bfc57286edb8c2cd35dc3904b8035f945665afd1cc78d1fcac259ebbc6b9fcc0ebf2b4a835c86327b970733670aef77b8293a0707c
SSDEEP

3072:Wzql/dpEymjmroF2eATAAp5s0Opw1u1R:Wwlm3jyteLAY0Opw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ac7ff93ab9dc270dcee93814de581ee_JaffaCakes118

Files

3ac7ff93ab9dc270dcee93814de581ee_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1a04cb78d9ec6c0a9729da14fafcfa78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Projects\Vid2Mp3\Release\showmsg.Mp3Tube\ShowMsg.pdb

Imports

comctl32

ord17

kernel32

LeaveCriticalSection
GetModuleFileNameA
DeleteCriticalSection
GlobalLock
GlobalUnlock
GetModuleHandleA
lstrcmpiA
IsDBCSLeadByte
RaiseException
LoadLibraryExA
InitializeCriticalSection
GetCurrentThreadId
SetLastError
GlobalFree
GlobalHandle
FlushFileBuffers
CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
SetFilePointer
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
WriteFile
ExitProcess
Sleep
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetCommandLineA
VirtualQuery
GetSystemInfo
GetModuleHandleW
VirtualProtect
VirtualAlloc
VirtualFree
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
GetLastError
lstrlenW
MulDiv
MultiByteToWideChar
lstrcmpA
GlobalAlloc
GetCurrentProcess
FlushInstructionCache
FindResourceExA
SizeofResource
LockResource
WideCharToMultiByte
LoadResource
FindResourceA
lstrlenA
GetProcAddress
FreeLibrary
LoadLibraryA
IsProcessorFeaturePresent
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy

user32

MapWindowPoints
GetClientRect
GetWindowRect
SetWindowPos
SetWindowTextA
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageA
GetWindow
GetParent
MonitorFromWindow
GetWindowLongA
DestroyAcceleratorTable
MapDialogRect
CallWindowProcA
DialogBoxParamA
GetActiveWindow
LoadIconA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RegisterWindowMessageA
DialogBoxIndirectParamA
DefWindowProcA
ReleaseCapture
CreateAcceleratorTableA
FillRect
GetFocus
UnregisterClassA
GetSysColor
CharNextA
LoadStringA
RegisterClassExA
LoadCursorA
GetClassInfoExA
GetClassNameA
IsWindow
SetWindowContextHelpId
GetDlgItem
IsChild
SetFocus
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MoveWindow
GetWindowTextLengthA
GetWindowTextA
SendMessageA
DestroyWindow
CreateWindowExA
SetWindowLongA
EndDialog
PostQuitMessage
GetDesktopWindow
GetMonitorInfoA

gdi32

GetObjectA
GetStockObject
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
DeleteObject
SelectObject
GetDeviceCaps

advapi32

RegSetValueExA
RegCloseKey
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyExA
RegQueryInfoKeyA

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CoTaskMemRealloc
OleUninitialize
OleInitialize
OleLockRunning
StringFromGUID2
CreateStreamOnHGlobal

oleaut32

VariantClear
LoadTypeLi
VarUI4FromStr
OleCreateFontIndirect
VariantInit
LoadRegTypeLi
SysFreeString
SysAllocStringLen
SysStringLen
SysAllocString

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1a04cb78d9ec6c0a9729da14fafcfa78

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 25KB - Virtual size: 25KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 61KB - Virtual size: 61KB

.reloc Size: 11KB - Virtual size: 12KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 25KB - Virtual size: 25KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 61KB - Virtual size: 61KB

.reloc
Size: 11KB - Virtual size: 12KB